CVE-2024-3795
- EPSS 0.19%
- Veröffentlicht 14.05.2024 15:42:20
- Zuletzt bearbeitet 10.04.2025 18:55:46
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupTemplate, name / description fields. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the ...
CVE-2024-3796
- EPSS 0.12%
- Veröffentlicht 14.05.2024 15:42:20
- Zuletzt bearbeitet 10.04.2025 19:54:51
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupSchedule, description field. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim a...
CVE-2024-3793
- EPSS 0.19%
- Veröffentlicht 14.05.2024 15:42:19
- Zuletzt bearbeitet 10.04.2025 18:15:09
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/CloudAccounts, account name / user password / server fields, all parameters. Exploitation of this vulnerability could allow a remote user to se...
CVE-2024-3794
- EPSS 0.19%
- Veröffentlicht 14.05.2024 15:42:19
- Zuletzt bearbeitet 10.04.2025 20:26:11
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/AdvancedSystem, description field, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL...
CVE-2024-3792
- EPSS 0.48%
- Veröffentlicht 14.05.2024 15:42:18
- Zuletzt bearbeitet 10.04.2025 18:39:55
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/DeviceReplication, execution range field, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially craf...
CVE-2024-3790
- EPSS 0.1%
- Veröffentlicht 14.05.2024 15:42:17
- Zuletzt bearbeitet 10.04.2025 19:18:12
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemUsers, login / description fields, passwd1/ passwd2 parameters. Exploitation of this vulnerability could allow a remote user to send a sp...
CVE-2024-3791
- EPSS 0.19%
- Veröffentlicht 14.05.2024 15:42:17
- Zuletzt bearbeitet 10.04.2025 19:27:02
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemConfiguration, name / free memory limit fields , type / password parameters. Exploitation of this vulnerability could allow a remote user...
CVE-2024-3787
- EPSS 1.56%
- Veröffentlicht 14.05.2024 15:42:16
- Zuletzt bearbeitet 27.03.2025 21:15:49
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 disks (/admin/DeviceS3). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.
CVE-2024-3788
- EPSS 0.93%
- Veröffentlicht 14.05.2024 15:42:16
- Zuletzt bearbeitet 10.04.2025 14:29:50
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through License (/admin/CDPUsers). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.
CVE-2024-3789
- EPSS 0.47%
- Veröffentlicht 14.05.2024 15:42:16
- Zuletzt bearbeitet 10.04.2025 20:26:19
Uncontrolled resource consumption vulnerability in White Bear Solutions WBSAirback, version 21.02.04. This vulnerability could allow an attacker to send multiple command injection payloads to influence the amount of resources consumed.